top of page

Privacy policy

Ensuring your data is kept secure and GDPR compliant 

In order to provide a service of the highest standard, I, may, hold certain data given by clients. This privacy policy outlines the way I handle this data appropriately and securely as defined by General Data Protection Regulations (GDPR).

I currently collect and process the following information:
I currently collect and process your personal information such as your name, email address, telephone number, name and address of your GP, personal history, including relevant medical history. All payments are made by bank transfer into the business bank account and therefore no card details are obtained.

How I get any information and why I have it:
I collects this information directly from you and your referrer in order to deliver an efficient, safe and ethical psychological therapy practice. I makes sure that only the minimum data necessary to provide our service is acquired. Under GDPR, a “Legitimate Interest” is the lawful basis upon which we rely for processing this information.

All information gathered remains confidential and I will not share it with any third party. However, there are several notable exceptions when confidentiality may need to be breached (These are also fully detailed in the therapy contract you will sign prior to starting therapy).

Such scenarios include:

  • When there is concern of a significant threat of harm to you or another individual.

  • Discussing a client’s case in clinical supervision using non-identifiable data (an important aspect of therapy as a way to quality assure our therapeutic work. This is highlighted in best practice guidelines overseeing our professional practice).

  • Disclosure of a concerning act.

  • Therapist notes are called upon by a court of law.


Your rights:
You have the right to view the information I hold about you and ask for changes to be made, which can be provided within one month of request without charge. Please contact if you wish to make such a request. At any time, you also have the right to object to me processing and holding your data. However, this may result in being unable to continue to provide my services to you. You also have the right to withdraw consent. However, this will not affect the lawful processing and retention of information based on prior consent, and for legal reasons it may not be possible to comply with a request to delete data already held.

How do I store your information:
All information collected from you is securely stored digitally using password protection or within a locked cabinet. This information may be kept for up to 7 years following the final date of service use. The data will then be securely destroyed.

Any changes to our privacy policy will be updated on the website, with subsequent version numbers given at the bottom of the page.

How to complain:
If you have any questions or concerns about this privacy notice, or if you are unhappy with how   your data is used, please contact ORP to discuss and, if not satisfied, you may contact the ICO on the below details:

Information Commissioner’s Office
Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
0303 123 1113

bottom of page